[aerius]

Hello,

I'm using the kill switch script you wrote but I'm using it with the Netgear R7000 running tomato by shibby. I have configured the OpenVPN with my PIA.


In my firewall rules I have the script to kill internet activity when the VPN connection is not working. It is working great like this but when it kills it there is no internet until my next scheduled router reboot. I have scheduled the router to reboot daily at 5AM. What can I add here to make it either restart the OpenVPN connection or have it reboot the router after it kills it?

Thanks.

[Night Prowler]

[aerius]

I'm not sure if OpenVPN automatically retries to connect if it is disconnected.

[Night Prowler]

[aerius]

is there a command to stop, then start OpenVPN rather than a reconnect?

[vector80]

I can't seem to prevent a device from accessing the Internet once a VPN is dropped. Using ipleak.net to validate. I assumed from my readings that the by having following commands in place and rebooting the router I would be protected but I can still access ipleak.net when I turn off my vpn client.

Where have I gone awry?


//////////
Commands
//////////

Start Up Command
/usr/sbin/iptables -I FORWARD -s 192.168.1.116/32 -o $(nvram get wan_iface) -j DROP

Firewall Command
iptables -I FORWARD -s 192.168.1.116 -o $(nvram get wan_iface) -j DROP


//////////////
VPN Settings
//////////////

Tunnel Device: TUN
Protocol: UDP
TLS Cipher: None
LZO Compression: None
NAT: Enabled

Addition Config
# Write to a log file for easy viewing
log /tmp/myvpn.log

# Mute messages that repeat a bunch of times
mute 50

# Do not accept the routes provided by the VPN server
# (will manage those myself)
#route-nopull

# Keep the connection alive and attempt to reestablish it if it dies
keepalive 10 60

# Additional settings specified by VPN provider
tls-client
remote-cert-tls server

# Dont use auth-nocache as it prevents reconnection due to a bug
# auth-nocache

Policy Based Routing
192.168.1.116/32